HPE Community
Comware Based
1756108 Members
4614 Online
108841 Solutions
New Discussion

HP 5130 EI - MAB (MAC Authentication Bypass) locked down by port

 
Futurity
Occasional Advisor

‎06-15-2017 05:59 AM

‎06-15-2017 05:59 AM

HP 5130 EI - MAB (MAC Authentication Bypass) locked down by port

Hi,

I was wondering if someone could hopefully point me in the right direction?

Although I've ready a lot about HP support for 802.1X / MAB, supported RADIUS servers, user configuration and how authenticated ports can be dynamically assigned VLANs and ACLs, I can't seem to find information about the RADIUS data structure, attribute values and validation rules.

I was wondering if it is possible with MAB to lock down specific MAC addresses to specific ports?

i.e. IRF Domain 1, Member 2, Port 1/0/12 can only permit access to one or a list of specified MAC addresses?

It looks like 802.1X provides lots of great hot desk features, but we don't want a single port to allow any MAC address configured in the RADIUS server to be permitted to use it.  I suppose I'm asking that only MAC addresses within a department can use physical ports assigned to the department.

Many thanks for any help or pointers you may be able to give me.

Neil

 

0 Kudos
The opinions expressed above are the personal opinions of the authors, not of Hewlett Packard Enterprise. By using this site, you accept the Terms of Use and Rules of Participation.